Re: Sshfs and umask

To: debian-user@lists.debian.org
Subject: Re: Sshfs and umask
From: Sven Hartge <sven@svenhartge.de>
Date: Wed, 18 Oct 2017 17:31:41 +0200
Message-id: <[🔎] 2dtagq911nmcv8@mids.svenhartge.de>
References: <[🔎] os78u7$b0n$1@blaine.gmane.org>

Paul van der Vlis <paul@vandervlis.nl> wrote:

> I try to force the umask of an sshfs on the server side.

> I've tried /etc/ssh/sshd_config with for example:
> Subsystem       sftp    /usr/lib/openssh/sftp-server -u 0002
> or:
> ForceCommand internal-sftp -u 0002
> But this does not change the umask.

> And adding "session optional pam_umask.so umask=0002" to
> /etc/pam.d/sshd/ does change the umask for ssh, but not for sshfs.

> Does somebody understand where it goed wrong?

The umask can only enforce stricter permissions, i.e. the client wants
to set 0777 but the file gets set to 0775 in your case.

But it can't set wider permissions. If the client sets the permissions
to 0700 then no umask in the world will get you to 0775.

Dirty hack: use something like incron to trigger a script via inotify to
change the permssions.

Grüße,
Sven.

-- 
Sigmentation fault. Core dumped.

Reply to:

Follow-Ups:
- Re: Sshfs and umask
  - From: Paul van der Vlis <paul@vandervlis.nl>

References:
- Sshfs and umask
  - From: Paul van der Vlis <paul@vandervlis.nl>

Prev by Date: Re: Debian 9.2, VSphere 6.5.0, "TCP performance may be compromised"
Next by Date: Re: pm-utils by default on Xfce for suspend/hibernate
Previous by thread: Sshfs and umask
Next by thread: Re: Sshfs and umask
Index(es):
- Date
- Thread